Skip to main content

ML Schedules SAML Integration (Google)

Christopher Gentile
  • Updated

Step 1: Create a SAML application within your Identity Provider.

Google SAML Setup

  • Login to your Google Admin Console at https://admin.google.com/
  • Browse to Apps → Web and Mobile Apps
  • Click Add App → Add Custom SAML App
  • Fill out the App Name to correspond to the MasterLibrary product and upload the image provided by MasterLibrary for the icon
  • MLS ICon.png
  • Copy the Entity ID and the Certificate as they will be used in Step 2 below
  • Service Provider Details
    • https://XXXXX.mlschedules.com/MLSAMLConnect.aspx
      • Replace “XXXXX” with your custom MasterLibrary subdomain
    • For Name ID format select “Persistent” 
    • For Name ID select “Basic Information > Primary email”
  • Attribute Mapping
    • You will map 3 attributes here and they need to match exactly as entered here
      • Basic Information - Primary Email
        • Email
      • Basic Information - First name
        • FirstName
      • Basic Information - Last name
        • LastName
    • Group membership
      • This is where you will select the Groups you want to pass through to automatically assign Role(s) to the Users within MasterLibrary.  This is optional but a nice way to give Users some default roles and capabilities, especially if you segment within Groups in Google already.

 

 

Step 2: Configure your Identity Provider within MasterLibrary Software.

Once you log in to your MasterLibrary product you will navigate to Settings → Single Sign On → SAML Configuration.  From there you will configure your provider by:

  1. Update the Issuer to contain the Entity ID copied from step 1
  2. For Google: The Login Link field can be left blank.
  3. Copy/paste the Certificate you generated in your Provider configuration in Step 1.
  4. Click Save

Step 3: Set default Roles for Users who login via SAML.

Once you log in to your MasterLibrary product you will navigate to Admin → Single Sign On → SAML Group Settings.  From there, you will configure the SAML Groups you indicated in Step 1 and what default set of Roles you want to give to Users within that Group.

 

*Passing "Group" is required, but using Groups to actually give default Roles is not.*

 

Note: You can create as many SAML Groups as you’d like, and each time a User logs in they will get whatever Roles you indicate on all of the Groups they are a part of.  You can also manage additional Roles within MasterLibrary as usual, but you can not remove these default ones so make sure they apply to all users within the group.


 

 

For Google: Group Name field will be the Group Names established in Step 1


Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk